[ubuntu/hirsute-proposed] qemu 1:5.2+dfsg-6ubuntu1 (Accepted)

Christian Ehrhardt christian.ehrhardt at canonical.com
Tue Feb 23 12:50:22 UTC 2021 

qemu (1:5.2+dfsg-6ubuntu1) hirsute; urgency=medium

  * Merge with Debian unstable, includes fixes for
    - build operates differently if source is a git repo (LP: #1887535)
    Remaining changes:
    - qemu-kvm to systemd unit
      - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
        hugepages and architecture specifics
      - d/qemu-system-common.qemu-kvm.service: systemd unit to call
        qemu-kvm-init
      - d/qemu-system-common.install: install helper script
      - d/qemu-system-common.qemu-kvm.default: defaults for
        /etc/default/qemu-kvm
      - d/rules: call dh_installinit and dh_installsystemd for qemu-kvm
    - Distribution specific machine type (LP: 1304107 1621042)
      - d/p/ubuntu/define-ubuntu-machine-types.patch: distro machine types
      - d/qemu-system-x86.NEWS Info on fixed machine type definitions
        for host-phys-bits=true (LP: 1776189)
      - add an info about -hpb machine type in debian/qemu-system-x86.NEWS
      - provide pseries-bionic-2.11-sxxm type as convenience with all
        meltdown/spectre workarounds enabled by default. (LP: 1761372).
      - ubuntu-q35 alias added to auto-select the most recent q35 ubuntu type
    - Enable nesting by default
      - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
        in qemu64 on amd
        [ No more strictly needed, but required for backward compatibility ]
    - improved dependencies
      - Make qemu-system-common depend on qemu-block-extra
      - Make qemu-utils depend on qemu-block-extra
      - let qemu-utils recommend sharutils
    - tolerate ipxe size change on migrations to >=18.04 (LP: 1713490)
      - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types
        reference 256k path
      - d/control-in: depend on ipxe-qemu-256k-compat-efi-roms to be able to
        handle incoming migrations from former releases.
    - d/control-in: Disable capstone disassembler library support (universe)
    - d/qemu-system-x86.README.Debian: add info about updated nesting changes
    - d/control*, d/rules: disable xen by default, but provide universe
      package qemu-system-x86-xen as alternative
      [includes compat links changes of 5.0-5ubuntu4]
    - allow qemu to load old modules post upgrade (LP 1847361)
      - Drop d/qemu-block-extra.*.in, d/qemu-system-gui.*.in
      - d/rules: Drop generating package version into maintainer scripts
      - d/qemu-system-gui.prerm: add no-op prerm to overcome upgrade issues on
        the bad old prerm (LP 1906245 1905377)
    - d/p/ubuntu/lp-1907789-build-no-pie-is-no-functional-liker-flag.patch: fix
      ld usage of -no-pie (LP 1907789)
  * Added changes
    - d/p/u/lp-1916230-hw-s390x-fix-build-for-virtio-9p-ccw.patch: fix
      virtio-9p-ccw being missing (LP: #1916230)

qemu (1:5.2+dfsg-6) unstable; urgency=medium

  * deprecate qemu-debootstrap. It is not needed anymore with
    binfmt F flag, since everything now works without --foreign
    debootstrap argument and copying the right qemu binary into
    the chroot. Closes: #901197
  * fix the brown-paper bag bug: wrong argument order
    in the linux-user-binfmt patch (really closes: #970460)

qemu (1:5.2+dfsg-5) unstable; urgency=medium

  * d/rules: ensure b/ subdir exists before building palcode and qboot
  * d/changelog: #959530 is not fixed by 5.2+dfsg-4
  * 3 virtiofsd patches Closes: #980814, CVE-2020-35517
    virtiofsd: potential privileged host device access from guest
    - virtiofsd-extract-lo_do_open-from-lo_open.patch
    - virtiofsd-optionally-return-inode-pointer-from-lo_do_lookup.patch
    - virtiofsd-prevent-opening-of-special-files-CVE-2020-35517.patch

qemu (1:5.2+dfsg-4) unstable; urgency=medium

  [ Michael Tokarev ]
  * require libfdt >= 1.5.0-2 due to #931046
  * qemu-user: attempt to preserve argv[0] when run under binfmt
    (Closes: #970460)
    This changes the enterpreter name for all linux-user registered
    binfmts, so it potentially can break stuff.  The actual binary
    being registered now is /usr/libexec/qemu-binfmt/foo-binfmt-P,
    which is a symlink to actual /usr/lib/qemu-foo[-static].
  * ignore .git-submodule-status when building source
  * some security fixes from upstream:
    o arm_gic-fix-interrupt-ID-in-GICD_SGIR-CVE-2021-20221.patch
      Closes: CVE-2021-20221
      GIC (armv7): out-of-bound heap buffer access via an interrupt ID field
    o 9pfs-Fully-restart-unreclaim-loop-CVE-2021-20181.patch
      Closes: CVE-2021-20181
  * non-security fixes from upstream:
    pc-bios-descriptors-fix-paths-in-json-files.patch - fixes wrong paths
    in edk2-firmware-related json files introduced in 5.2

  [ Christian Ehrhardt ]
  * d/control-in: avoid version mismatch of installed binaries
    (Closes: #956377)

  [ Dan Streetman ]
  * Backport configure param --with-git-submodules and set to 'ignore'

Date: Mon, 22 Feb 2021 11:40:36 +0100
Changed-By: Christian Ehrhardt <christian.ehrhardt at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/qemu/1:5.2+dfsg-6ubuntu1
-------------- next part --------------
Format: 1.8
Date: Mon, 22 Feb 2021 11:40:36 +0100
Source: qemu
Architecture: source
Version: 1:5.2+dfsg-6ubuntu1
Distribution: hirsute
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Christian Ehrhardt <christian.ehrhardt at canonical.com>
Closes: 901197 956377 970460 980814
Launchpad-Bugs-Fixed: 1887535 1916230
Changes:
 qemu (1:5.2+dfsg-6ubuntu1) hirsute; urgency=medium
 .
   * Merge with Debian unstable, includes fixes for
     - build operates differently if source is a git repo (LP: #1887535)
     Remaining changes:
     - qemu-kvm to systemd unit
       - d/qemu-kvm-init: script for QEMU KVM preparation modules, ksm,
         hugepages and architecture specifics
       - d/qemu-system-common.qemu-kvm.service: systemd unit to call
         qemu-kvm-init
       - d/qemu-system-common.install: install helper script
       - d/qemu-system-common.qemu-kvm.default: defaults for
         /etc/default/qemu-kvm
       - d/rules: call dh_installinit and dh_installsystemd for qemu-kvm
     - Distribution specific machine type (LP: 1304107 1621042)
       - d/p/ubuntu/define-ubuntu-machine-types.patch: distro machine types
       - d/qemu-system-x86.NEWS Info on fixed machine type definitions
         for host-phys-bits=true (LP: 1776189)
       - add an info about -hpb machine type in debian/qemu-system-x86.NEWS
       - provide pseries-bionic-2.11-sxxm type as convenience with all
         meltdown/spectre workarounds enabled by default. (LP: 1761372).
       - ubuntu-q35 alias added to auto-select the most recent q35 ubuntu type
     - Enable nesting by default
       - d/p/ubuntu/enable-svm-by-default.patch: Enable nested svm by default
         in qemu64 on amd
         [ No more strictly needed, but required for backward compatibility ]
     - improved dependencies
       - Make qemu-system-common depend on qemu-block-extra
       - Make qemu-utils depend on qemu-block-extra
       - let qemu-utils recommend sharutils
     - tolerate ipxe size change on migrations to >=18.04 (LP: 1713490)
       - d/p/ubuntu/pre-bionic-256k-ipxe-efi-roms.patch: old machine types
         reference 256k path
       - d/control-in: depend on ipxe-qemu-256k-compat-efi-roms to be able to
         handle incoming migrations from former releases.
     - d/control-in: Disable capstone disassembler library support (universe)
     - d/qemu-system-x86.README.Debian: add info about updated nesting changes
     - d/control*, d/rules: disable xen by default, but provide universe
       package qemu-system-x86-xen as alternative
       [includes compat links changes of 5.0-5ubuntu4]
     - allow qemu to load old modules post upgrade (LP 1847361)
       - Drop d/qemu-block-extra.*.in, d/qemu-system-gui.*.in
       - d/rules: Drop generating package version into maintainer scripts
       - d/qemu-system-gui.prerm: add no-op prerm to overcome upgrade issues on
         the bad old prerm (LP 1906245 1905377)
     - d/p/ubuntu/lp-1907789-build-no-pie-is-no-functional-liker-flag.patch: fix
       ld usage of -no-pie (LP 1907789)
   * Added changes
     - d/p/u/lp-1916230-hw-s390x-fix-build-for-virtio-9p-ccw.patch: fix
       virtio-9p-ccw being missing (LP: #1916230)
 .
 qemu (1:5.2+dfsg-6) unstable; urgency=medium
 .
   * deprecate qemu-debootstrap. It is not needed anymore with
     binfmt F flag, since everything now works without --foreign
     debootstrap argument and copying the right qemu binary into
     the chroot. Closes: #901197
   * fix the brown-paper bag bug: wrong argument order
     in the linux-user-binfmt patch (really closes: #970460)
 .
 qemu (1:5.2+dfsg-5) unstable; urgency=medium
 .
   * d/rules: ensure b/ subdir exists before building palcode and qboot
   * d/changelog: #959530 is not fixed by 5.2+dfsg-4
   * 3 virtiofsd patches Closes: #980814, CVE-2020-35517
     virtiofsd: potential privileged host device access from guest
     - virtiofsd-extract-lo_do_open-from-lo_open.patch
     - virtiofsd-optionally-return-inode-pointer-from-lo_do_lookup.patch
     - virtiofsd-prevent-opening-of-special-files-CVE-2020-35517.patch
 .
 qemu (1:5.2+dfsg-4) unstable; urgency=medium
 .
   [ Michael Tokarev ]
   * require libfdt >= 1.5.0-2 due to #931046
   * qemu-user: attempt to preserve argv[0] when run under binfmt
     (Closes: #970460)
     This changes the enterpreter name for all linux-user registered
     binfmts, so it potentially can break stuff.  The actual binary
     being registered now is /usr/libexec/qemu-binfmt/foo-binfmt-P,
     which is a symlink to actual /usr/lib/qemu-foo[-static].
   * ignore .git-submodule-status when building source
   * some security fixes from upstream:
     o arm_gic-fix-interrupt-ID-in-GICD_SGIR-CVE-2021-20221.patch
       Closes: CVE-2021-20221
       GIC (armv7): out-of-bound heap buffer access via an interrupt ID field
     o 9pfs-Fully-restart-unreclaim-loop-CVE-2021-20181.patch
       Closes: CVE-2021-20181
   * non-security fixes from upstream:
     pc-bios-descriptors-fix-paths-in-json-files.patch - fixes wrong paths
     in edk2-firmware-related json files introduced in 5.2
 .
   [ Christian Ehrhardt ]
   * d/control-in: avoid version mismatch of installed binaries
     (Closes: #956377)
 .
   [ Dan Streetman ]
   * Backport configure param --with-git-submodules and set to 'ignore'
Checksums-Sha1:
 97409f91dc6d52de8ade59913abdf3e11c4b4e5b 7405 qemu_5.2+dfsg-6ubuntu1.dsc
 e124d5071b09459350c494b6ef06f52dcdd82602 141832 qemu_5.2+dfsg-6ubuntu1.debian.tar.xz
 0fc9e9d2fbd3035544d0e6a07f1e6d6fbd2e6f2e 23077 qemu_5.2+dfsg-6ubuntu1_source.buildinfo
Checksums-Sha256:
 3c84c7186cb354b730b28062e30483a874e00a14d56c9a62d7f29acda450d094 7405 qemu_5.2+dfsg-6ubuntu1.dsc
 dc5445a5ef28739cecf4de57001000a442eb02bf90df7651407eab06500ab504 141832 qemu_5.2+dfsg-6ubuntu1.debian.tar.xz
 0bdc52e6356bb6672e55a70340235d5045f2120c5b1eb196be6cfcb1bc63928c 23077 qemu_5.2+dfsg-6ubuntu1_source.buildinfo
Files:
 52e95e4ef25b790f570c86e0ef67157f 7405 otherosfs optional qemu_5.2+dfsg-6ubuntu1.dsc
 ab4bd56b8b9cdae88cd44a0632b7bc28 141832 otherosfs optional qemu_5.2+dfsg-6ubuntu1.debian.tar.xz
 f5a33c3f174343bf576f7263a89754aa 23077 otherosfs optional qemu_5.2+dfsg-6ubuntu1_source.buildinfo
Original-Maintainer: Debian QEMU Team <pkg-qemu-devel at lists.alioth.debian.org>

More information about the Hirsute-changes mailing list